Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-0918

Опубликовано: 28 мар. 2013
Источник: nvd
CVSS2: 6.8
EPSS Низкий

Описание

Google Chrome before 26.0.1410.43 does not prevent navigation to developer tools in response to a drag-and-drop operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Версия до 26.0.1410.42 (включая)
cpe:2.3:a:google:chrome:26.0.1410.0:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.1:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.2:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.3:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.4:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.5:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.6:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.7:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.8:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.9:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.10:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.11:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.12:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.14:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.15:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.16:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.17:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.18:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.19:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.20:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.21:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.22:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.23:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.24:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.25:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.26:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.27:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.28:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.29:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.30:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.31:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.32:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.33:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.34:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.35:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.36:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.37:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.38:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.39:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.40:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:26.0.1410.41:*:*:*:*:*:*:*

EPSS

Процентиль: 63%
0.00447
Низкий

6.8 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2013-0918

ubuntu
почти 13 лет назад

Google Chrome before 26.0.1410.43 does not prevent navigation to developer tools in response to a drag-and-drop operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site.

debian логотип

CVE-2013-0918

debian
почти 13 лет назад

Google Chrome before 26.0.1410.43 does not prevent navigation to devel ...

github логотип

GHSA-g6f7-v4hp-r7v7

github
больше 3 лет назад

Google Chrome before 26.0.1410.43 does not prevent navigation to developer tools in response to a drag-and-drop operation, which allows user-assisted remote attackers to have an unspecified impact via a crafted web site.

EPSS

Процентиль: 63%
0.00447
Низкий

6.8 Medium

CVSS2

Дефекты

CWE-264